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Abstract 

We propose a notion of convergence-sensitive bisimulation that is built just over the 
notions of (internal) reduction and of (static) context. In the framework of timed CCS, 
we characterise this notion of 'contextual' bisimulation via the usual labelled transition 
c/2 , system. We also remark that it provides a suitable semantic framework for a fully abstract 

embedding of untimed processes into timed ones. Finally, we show that the notion can 
be refined to include sensitivity to divergence. 

> , 

^ , i Introduction 

CO 
On 

■ The main motivation for this work is to build a notion of convergence-sensitive bisimulation 

, from first principles, namely from the notions of internal reduction and of (static) context. 

| A secondary motivation is to understand how asynchronous/untimed behaviours can be em- 

bedded fully abstractly into synchronous/timed ones. Because the notion of convergence is 
very much connected to the notion of time, it seems that a convergence-sensitive bisimulation 
should find a natural application in a synchronous/timed context. Thus, in a nutshell, we 
^ ■ are looking for an 'intuitive' semantic framework that spans both untimed/asynchronous and 

timed/synchronous models. 

For the sake of simplicity we will place our discussion in the well-known framework of 
(timed) CCS. We assume the reader is familiar with CCS [10]. Timed CCS (TCCS) is a 
'timed' version of CCS whose basic principle is that time passes exactly when no internal 
computation is possible. This notion of 'time' is inspired by early work on the Esterel 
synchronous language [3], and it has been formalised in various dialects of CCS [14} [T2l [6]. 
Here we shall follow the formalisation in [6]. 

As in CCS, one models the internal computation with an action r while the passage of 
(discrete) time is represented by an action tick that implicitly synchronizes all the processes 
and moves the computation to the next instant. Q 

In this framework, the basic principle we mentioned is formalised as follows: 

P ^ ■ iff P fi> • 



*Work partially supported by ANR-06-SETI-010-02 . 
f PPS, UMR-7126. 

1 There seems to be no standard terminology for this action. It is called e in |14] . \ m [12] . a in [6], and 
sometimes 'next' in 'synchronous' languages a la Esterel [2]. 
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Table 1: Labelled transition system 
where we write P — *■ ■ if P can perform an action \x. TCCS is designed so that if P is a 

tick 

process built with the usual CCS operators and P cannot perform r actions then P ► P. 

In other terms, CCS processes are time insensitive. To compensate for this property, one 
introduces a new binary operator P > Q, called else-next, that tries to run P in the current 
instant and, if it fails, runs Q in the following instant. 

We assume countably many names a,b, . . . For each name a there is a communication 
action a and a co-action a. We denote with a, (3, . . . the usual CCS actions which are composed 
of either an internal action r or of a communication action a, a, . . .. We denote with //, //, . . . 
either an action a or the distinct action tick. 

The TCCS processes P,Q,. . . are specified by the following grammar 

P ::= | a.P \ P + P \ P \ P \ va P \ A(a) | P > P . 

We denote with fn(P) the names free in P. We adopt the usual convention that for each 
thread identifier A there is a unique defining equation A(h) = P where the parameters b 
include the names in fn(P). The related labelled transition system is specified in table [TJ 

Say that a process is a CCS process if it does not contain the else-next operator. The 
reader can easily verify that: 

(1) P ■ if and only if P ^ ■. 

tick 

(2) If P —+ Qi for i = 1, 2 then Q 1 = Q 2 . One says that the passage of time is deterministic. 

(3) If P is a CCS process and P then P = Q. Hence CCS processes are closed under 
labelled transitions. 

It will be convenient to write r.P for va (a.P \ a.0) where a £ fn(P), tick.P for > P, and 0, 
for the diverging process r.r 



(Pi I P2) h ■ 

Pi^Q, i = l,2 
(Pi | ft) ^ (Qi | Q 2 ) 

P ^* Q a,a^=u 
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Remark 1 (1) In the labelled transition system in table{Jl the definition of the tick action 
relies on the r action and the latter relies on the communication actions a, a',.... There is 
a well known method to give a direct definition of the r action that does not refer to the 
communication actions. Namely, one defines (internal) reduction rules such as (a.P + Q \ 
a.P' + Q') — > (P | P') which are applied modulo a suitable structural equivalence. 

(2) The labelled transition system in tabled relies on negative conditions of the shape P -f*. 
These conditions can be replaced by a condition 3 L P { L, where L is a finite set of commu- 
nication actions. The predicate '[ ' can be defined as follows: 

Pi I U, i = l,2 

| a.P [ {a} (Pi + P 2 ) J. Li U L 2 

PjL PjL Pi I Li, i = l,2 LxVJ7 2 = % 

P>QIL {ua P) | L\{a,a} (P x \ P 2 ) [ L 1 U L 2 



1.1 Signals and a deterministic fragment 

As already mentioned, the TCCS model has been inspired by the notion of time available in 
the Esterel model [1] and its relatives such as SL [5]. These models rely on signals as the 
basic communication mechanism. Unlike a channel, a signal persists within the instant and 
disappears at the end of it. It turns out that a signal can be defined recursively in TCCS as: 

emit(a) = a.emit(a) > 

The 'present' statement of SL that either reads a signal and continues the computation in 
the current instant or reacts to the absence of the signal in the following instant can be coded 
as follows: 

present a do P else Q = a.P > Q 
Modulo these encodings, the resulting fragment of TCCS is specified as follows: 

P ::= | emit(a) || present a do P else P\{P \ P)\va P\ A(a) . 

Notice that, unlike in (T)CCS, communication actions have an input or output polarity. The 
most important property of this fragment is that its processes are deterministic [HQ]. 



1.2 The usual labelled bisimulation 

As usual, one can define a notion of weak transition as follows: 

(— >)* otherwise 



K ^ 
O — > O 



where the notation X* stands for the reflexive and transitive closure of a binary relation X. 
When focusing just on internal reduction, we shall write — > for — > and => for =>. We write 
P — > ■ if 3 P' (P — > P'), otherwise we say that P has converged and write P {. We write P JJ- 
if 3Q (P => Q and Q J,). Thus P JJ- means that P may converge, i.e., there is a reduction 

tick 

sequence to a process that has converged. Because P | iff P > •, we have that P JJ- iff 

p tick__ 
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With respect to the notion of weak transition, one can define the usual notion of bisimu- 
lation as the largest symmetric relation 1Z such that if (P, Q) € 1Z and P P' then for some 
Q', Q 4» Q' and (P',Q') € 1Z. We denote with « n the largest labelled bisimulation (u for 
usual). When looking at CCS processes, one may focus on CCS actions (thus excluding the 
tick action). We denote with ~" cs the resulting labelled bisimulation. 

1.3 CCS vs. TCCS 

As we already noticed, TCCS has been designed so that CCS can be regarded as a transition 
closed subset of TCCS. A natural question is whether two CCS processes which are equivalent 
with respect to an untimed environment are still equivalent in a timed one. For instance, 
Milner [S] discusses a similar question when comparing CCS to SCCS.0 

1.3.1 Testing semantics 

In the context of TCCS and of a testing semantics, the question has been answered negatively 
by Hennessy and Regan [6j. For instance, they notice that the processes P = a.(b + c.b) + 
a.(d+c.d) and Q = a.(b + c.d) + a.{d+ c.b) are 'untimed' testing equivalent but 'timed' testing 
inequivalent. The relevant test is the one that checks that if an action b cannot follow an 
action a in the current instant then an action b will happen in the following instant just after 
an action c (process P will not pass this test while process Q does). This remark motivated 
the authors to develop a notion of 'timed' testing semantics. 

1.3.2 Bisimulation semantics 

What is the situation with the usual labelled bisimulation semantics recalled in section 11.21 / 
Things are fine for reactive processes which are defined as follows. 

Definition 2 A process P is reactive if whenever P =£• • • • Q, for n > 0, we have the 
property that all sequences of r reductions starting from Q terminate. 

Proposition 3 Suppose P, Q are CCS reactive processes. Then P ss u Q if and only if P ~" cs 
Q. 

Proof. Clearly, is a CCS bisimulation, hence P sa u Q implies P «" cs Q. To show the 
converse, we prove that ~" cs is a timed bisimulation. So suppose P ^ cs Q and P ^ P'. This 

means P =5- P\ > P\ =4> P' . Then for some Q\, Q Q\ and P\ «" cs Q\. Further, because 
Qi is reactive there is a Q2 such that Qi Q2 and Q2 [■ By definition of bisimulation and 
the fact that Pi J., we have that Pi ^" cs Q2- So for some Q', Q2 =>• Q' and P' «" cs Q'. Thus 
we have shown that there is a Q' such that Q Q' and P' ~" cs Q'. □ 

Proposition [3] fails when we look at non-reactive processes. For instance, and O are 
regarded as untimed equivalent but they are obviously timed inequivalent since the second 

2 The notion of instant in SCCS is quite different from the one considered in TCCS/Esterel. In the former 
one declares explicitly what each thread does at each instant while in the latter the duration of an instant is 
the result of an arbitrarily complex interaction among the different threads. 
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process does not allow time to pass. This example suggests that if we want to extend propo- 
sition [3] to non-reactive processes, then the notion of bisimulation has to be convergence 
sensitive. 

One possibility could be to adopt the usual bisimulation ~" on CCS processes. We already 
noticed that if P is a CCS process and P tlck > Q then P = Q. Thus in the bisimulation game 

between CCS processes, the condition l P P' implies Q Q h can be replaced by l P JJ, 
implies Q JJ.'. The resulting equivalence on CCS processes is not new, for instance it appears 
in [BJ as the so called stable weak bisimulation. One may notice that this equivalence has 
reasonably good congruence properties. 

Proposition 4 Suppose Pi k> u P2 and Q\ «" Q 2 . Then 

(1) (Pi \R)^ U (P 2 \R). 

(2) // Pi,P 2 I then P x > Qi P 2 > Q 2 . 

Proof. First note that we can work with an asymmetric definition of bisimulation where a 
strong transition is matched by a weak one. 

tick 

(1) We just check the condition for the tick action. Suppose (Pi | R) ► (P{ | R ). This 

entails Pi ^ P[ and R ^ R 1 . Then P 2 4> P 2 ', P' 2 ' |, and Pi P»{. Also P$ ^ P' 2 and 
P' x ss" P% . Finally, we have that (P^' | R) J. because if they could synchronise on a name a 
then so could (Pi | R). 

(2) There are two cases to consider. If Pi >Qi > Q\ then P2 Q2- If Pi >Qi P{ 
because Pi A P{ then P 2 4> P^ and P[ « u P^. □ 

Remark 5 T/ie else-next operator suffers from the same compositionality problems as the 
sum operator. For instance, ~ u r.O 6wt > Q = tick.Q while r.O > Q ~" 0. As for the sum 
operator, one may remark that in practice we are interested in a guarded form of the else-next 
operator. Namely, the elsejnext operator is only introduced as an alternative to a communi- 
cation action (the present operator discussed in section [7771 is such an example). Proposition 
\J^2) entails that in this form, the else-next operator preserves bisimulation equivalence. 

1.3.3 An alternative path 

The reader might have noticed that on CCS processes « u refines ^ cs by adding may con- 
vergence as an observable along with the usual labelled transitions. This is actually the case 
of all convergence/divergence sensitive bisimulations we are aware of (see, e.g., [lb\ IB]). The 
question we wish to investigate is: what happens if we just take may convergence as an ob- 
servable without assuming the observability of the labelled transitions? The question can be 
motivated by both pragmatic and mathematical considerations. On the pragmatic side, one 
may argue that the normal operation of a timed / synchronous program is to receive inputs at 
the beginning of each instant and to produce outputs at the end of each instant. Thus, unless 
the instant terminates, no observation is possible. For instance, the process (a | fi) could be 
regarded as equivalent to £1, while they are distinguished by the usual bisimulation ~" on the 
ground that the labelled transition a is supposed to be directly observable. 

On the mathematical side, it has been remarked by many authors that the notion of 
labelled transition system is not necessarily compelling. Specifically, one would like to define 
a notion of bisimulation without an a priori commitment to a notion of label. To cope with 
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this problem, a well-known approach started in [TT] and elaborated in [7] is to look at 'internal' 
reductions and at a basic notion of 'barb' and then to close under contexts thus producing 
a notion of 'contextual' bisimulation. However, even the notion 'barb' is not always easy to 
define and justify (an attempt based on the concept of hi- orthogonality is described in [l3j). It 
seems to us that a natural approach which applies to a wide variety of formalisms is to regard 
convergence (may-termination) as the 'intrinsic' basic observable automatically provided by 
the internal reduction relation. 

1.3.4 Contribution 

Following these preliminary considerations, we are now in a position to describe our contri- 
bution. 

1. We introduce a notion of contextual bisimulation for CCS whose basic observable (or 
barb) is the may-termination predicate (section [2]) . 

2. We provide various characterisations of this equivalence culminating in one based on a 
suitable 'convergence-sensitive' labelled bisimulation (section [3]) . 

3. We derive from this characterisation that (section H|) : 

(a) the embedding of CCS in TCCS is fully abstract (even for non-reactive processes). 

(b) the proposed equivalence coincides with the usual one on reactive processes. 

(c) on non-reactive processes it identifies more processes than the usual timed labelled 
bisimulation ~". 

(d) on non-reactive CCS processes it is incomparable with the usual labelled CCS 
bisimulation ~c CS . 

4. We refine the proposed notion of contextual bisimulation by making it sensitive to 
divergence and show that the characterisation results mentioned above can be extended 
to this case (section [5]) . 

The development will take place in the context of so called weak bisimulation [10] which 
is more interesting and challenging than strong bisimulation. 

2 Convergence sensitive bisimulation 

We denote with C,D, . . . one hole static contexts specified by the following grammar: 

C ::= [ ] | C | P | vaC 

We require that the notion of bisimulation we consider is preserved by the static contexts in 
the sense of [7]. 

Definition 6 (bisimulation) A symmetric relation 7Z on processes is a bisimulation ifPlZQ 
implies: 

cxt for any static context C, C[P]1ZC[Q}. 

red pAP',n£ {r,tick} implies 3Q' (Q 4> Q' and P'TZQ'). 
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We denote with ~ the largest bisimulation. 

Remark 7 (1) In view of remark the definition^ of bisimulation does not assume 

the labels a, a', . . . which correspond to the communication action. Not only the labels are not 
considered in the bisimulation game, but they are not even required in the definition of the 
t action. This means that the definition can be directly transferred to more complex process 
calculi where the definition of communication action is at best unclear. 

(2) For CCS processes, if P -^-> Q then P = Q. It follows that in the definition above, the 
condition [red] when fx = tick can be replaced by P JJ. implies Q JJ-. This is obviously false for 
processes including the elsejnext operator; in this case one needs the tick action to observe the 
behaviour of processes after the first instant, e.g., to distinguish tick. a from tick. 6. 

In view of the previous remark, the definition of bisimulation is specialised to CCS pro- 
cesses by simply restricting the condition [cxt] to CCS static contexts. We denote with ~ ccs 
the resulting largest bisimulation. 

Next we remark that the observability of a 'stable commitment (or barb)' is entailed by 
the observation of convergence. 

Definition 8 We say that P (stably) commits on a, and write P J| a , if P =r- P 1 , P' \, and 
P > A-l 

Proposition 9 // P « Q and P JJ. a then Q JJ. a . 

PROOF. Suppose P JJ, a and P » Q. Then P P', P' j, and P' A •. By definition of 
bisimulation, Q Q" and P' rj Q" . Moreover, Q" Q' , Q' |, Q' « P' « Q" . To show that 
Q' — > •, consider the context C = ([ ] | a.O). Then we have C[P'] \jf, while C[Q'] JJ- if and only 

if Q' : □ 

Another interesting notion is that of contextual convergence. 

Definition 10 We say that a process P is contextual convergent, and write P ij-c, i/3C (C[P] JJ- 
)• 

Clearly, P JJ- implies P JJ-c but the converse fails taking, for instance, (a + b) | a.Q. 
Contextual convergence, can be characterised as follows. 

Proposition 11 The following conditions are equivalent: 

(1) p^...^p' andP' [. 

(2) There is a CCS process Q such that (P \ Q) JJ,. 

(3) PJk7- 

PROOF. (1 ^> 2) Suppose P Pi • • • P n and P n [. We build the process Q in (2) 
by induction on n. If n = we can take Q = 0. Otherwise, suppose n > 0. By inductive 
hypothesis, there is Q± such that (Pi | Q±) JJ-. We proceed by case analysis on the first action 
ot\. If Oil = r take Q = Qi and if a\ = a take Q = a.Q\. 



3 Note that in this definition the process 'commits' on action a only when it has converged. 
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(2 3) Taking the static context C = [ ] \ Q. 

(3 1) First, check by induction on a static context C that P A • implies C[P] ■. Hence 
C[P] | implies P [. Second, show that C[P] ^ Q implies that Q = C'[P'} where C is a 

static context and either P = P' or P — > P'. Third, suppose C[P] -> Qi ■ ■ ■ -> Qn with 
Q n {. Show by induction on n that P can make a series of labelled transitions and reach a 
process which has converged. □ 



Remark 12 As shown by the characterisation above, the notion of contextual convergence is 
unchanged if we restrict our attention to contexts composed of CCS processes. 

We notice that a bisimulation never identifies a process which is contextual convergent 
with one which is not while identifying all processes which are not contextual convergent. 

Proposition 13 (1) // P « Q and P ty c then Q JJ. C . 
(2) // P # c and Q $ c then P « Q. 

Proof. (1) If P JJ-c then for some context C, C[P] JJ-. By condition [cxt], we have that 
C[P] « C[Q], and by condition [red] we derive that C[Q] JJ-. Hence Q JJ-c- 

(2) We notice that the relation S = {(P, Q) | P, Q ^c"} is a bisimulation. Indeed: (i) if P ^ 
then C[P] (ii) if P P' and P ^ c then P' f C) and (iii) if P f c then P ^ •. □ 

3 Characterisation 

We characterise the (contextual and convergence sensitive) bisimulation introduced in defini- 
tion [6] by means of a labelled bisimulation. The latter is obtained from the former by replacing 
condition [cxt] with a suitable condition [lab] on labelled transitions as defined in table Q3 

Definition 14 (labelled bisimulation) A symmetric relation 1Z on processes is a labelled 
bisimulation if P7ZQ implies: 

lab if P JJ-c and P =4> P' then Q Q' and P'IZQ' where a € {a, r} and a = a if P' JJ-c- 
red if P A P', fie {r,tick} then3Q' (Q ^ Q' and P'TZQ'). 
We denote with ~^ the largest labelled bisimulation. 

Remark 15 (1) By remark^ on CCS processes the condition [red] when fx = tick is equiv- 
alent to: P JJ- implies Q JJ.'. By remark [T^ the notion of contextual convergence is unaffected 
if we restrict our attention to CCS processes. This means that, by definition, the (timed) 
labelled bisimulation restricted to CCS processes is the same as the labelled bisimulation on 
(untimed) CCS processes. 

(2) The predicate of contextual convergence ij-c plays an important role in the condition [lab] . 
To see why, suppose we replace it with the predicate JJ- and assume we denote with ~ ^ the 
resulting largest labelled bisimulation. The following example shows that w " is not preserved 
by parallel composition. Consider: 

P 1 = a.(b + c), P 2 = a.b + a.c, Q = a.(d + Q). 
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Then (Pi \ Q) ~ ^ (P2 \ Q) because both processes fail to converge. On the other hand, 
(Pi I Q) I d 96^ (P 2 I Q) I because i/ie first may converge to (b + c) which cannot be matched 
by the second process. 

(3) One may consider an asymmetric and equivalent definition of labelled bisimulation where 
strong transitions are matched by weak transitions. To check the equivalence, it is useful to 
note that P $c an d P — > P' implies P' $c- 

We provide a rather standard proof that bisimulation and labelled bisimulation coincide. 

Proposition 16 If P ^ Q then P ^ Q. 

Proof. We show that the bisimulation ~ is a labelled bisimulation. We denote with P © Q 
the internal choice between P and Q which is definable, e.g., as r.P + r.Q. Suppose P JJ-o 
and P =4> P' . We consider a context C = [ | T where T = a. ((6 © 0) © c) and b, c are 'fresh 
names' (not occurring in P,Q). We know C[P] ta C[Q] and C[P] (P' | (b © 0)). Thus 
C[Q] => (Q' I T") where either Q => Q' and T 4> T' or Q => Q' and T = T . 

• Suppose P' Jfc- Then (P' | (6 © 0)) $ c and, by proposition H3J (Q' | T") f c . The 
latter implies that Q' J/c*. By contradiction, suppose Q' JJ-c, that is (Q' \ R) JJ-. Then 
(Q' j T') I R I T' JJ- (contradiction!), where we take T' = a \i T' = T and T' = otherwise. 
Hence, P' ~ Q' as required. 

• Suppose P' If Q ^ Q' and T 4> T' then we show that it must be that T' = (6©0). This 
is because if P' 4J-o then P' | (6©0) JJ-c 1 which in turn implies that for some R (not containing 
the names b or c), (P' | (6©0) | P) Jbj. By proposition (9J we must have Q" = (Q' \ T') \ R Jbj. 
Thus T' cannot be and it cannot be (6©0)ffic, for otherwise Q" JJ. C which cannot be matched 
by (P' I (600) I P). Further, we have P' | (600) ^ P' | (= P'). So (Q' | (6©0)) 4> (Q' | T") 
and P' (Q' | T"). The latter entails that T" = 0. 

On the other hand, we show that Q Q' and T = T' is impossible. Reasoning as above, 
we have (P' | (6 © 0) | P) J| 6 . But then if (Q' \ T) \ R U we shall also have (Q' \ T) \ R JJ. C . □ 

The following lemma relates contextual convergence to labelled bisimulation (cf. the 
similar proposition [T3j) . 

Lemma 17 (1) If P ^ £ Q and P JJ-c t/ien Q J| C . 
(2) // P jfc and Q # c £/ten P Q. 

Proof. (1) By proposition dH if P Jj. c then P • • • ^ P' and P' j. By definition of 
labelled bisimulation we should have Q % ■ ■ ■ ^ Q' and P' Q'. Then P' S • entails 
Q' =>, and therefore Q i^c- 

(2) By proposition [T3l P, Q jfc implies P m Q, and by proposition [TBI we conclude that 
P^Q. □ 

Proposition 18 If P ^ Q then P « Q. 
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Proof. We show that labelled bisimulation is preserved by static contexts. In view of 
remark [T5T3). we shall work with an asymmetric definition of bisimulation. With respect to 
this definition, we show that the following relations are labelled bisimulations: 

{{va P, vaQ)\P Q}U , {(P \ R,Q \ R) \ P ^ Q}U ?J . 

The case for restriction is a routine verification so we focus on parallel composition. Suppose 
(P | R) A- •. We proceed by case analysis. 

• (P\R)^(P\ R') because R ^ R'. Then (Q \ R) A (Q \ R'). 

• (P j R) ^ (P | R') because P ^ P' and R ^ R'. Then Q Qi ^> Q 2 Q' and 
P Q'. Notice that P rj* Qi with P,Q 1 j, and therefore (Qi | R) ^ (Q 2 | P')- Hence 
(Q | fl)*4 k (Q' j 

• Suppose (P | P) J| c and (P | P) ^ (P | P) because PA?'. Then P J| c and therefore 
Q^Q',ae {a, r}, and P' Q'. If (P' j P) then P' ty c and this entails q = a. 

• Suppose (P | R) (P | P) because P ^ P. Then Q =5- Q' and P Q'. 

• Suppose (P | P) ^ (P | P') because P A P and P ^ R'. If P,P ^ c then Q ^ Q' 
and P Q'. If P ^ c and P' ty c then Q ^> Q', a G {a,r}, and P Q'. But then 
(P' | P), (Q' | P) f c , and we apply lemma [J7J If P jfc then Q f c and therefore (Q | P) Jfc, 
and we apply again lemma [T7] □ 

As a first application of the characterisation we check that bisimulation is preserved by 
the else^next operator in the sense of proposition [U(2). 

Corollary 19 Suppose Pi P 2 , Pi, P2 I, and Qi kQ 2 . T/ien Pi \>Qi « P 2 > Q 2 . 

tick tick 

Proof. There are two cases to consider. If Pi [> Qi ► Qi then P 2 > Q 2 ► Q 2 - If 

Pi >Qi ±> P[ because Pi ^ P[ then P 2 =4> P 2 , P{ « £ P 2 , and a G {r,a}. We note that it 
must be that a = a. Indeed, if a = r then since P 2 j we must have P 2 = P 2 and P[ Jj-c. The 
latter forces a = a which is a contradiction. □ 

4 Embedding CCS in TCCS 

In this section we collect some easy corollaries of the characterisation. First, we remark that 
two CCS processes are bisimilar when observed in an untimed/asynchronous environment if 
and only if they are bisimilar in a timed/synchronous environment. 

Proposition 20 Suppose P, Q are CCS processes. Then P ~ Q if and only if P ~ ccs Q. 

Proof. By propositions [16] and [18] we know that «=rt. By remark [ToTl). the labelled 
bisimulation on untimed processes coincides with the restriction to CCS processes of the 
timed labelled bisimulation. □ 

Second, we compare the notion of convergence-sensitive bisimulation we have introduced 
with the usual one we have recalled in the section 11.21 All the notions collapse on reactive 
processes. 
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Proposition 21 Suppose P,Q are reactive processes. Then P ~ Q if and only if P ~" Q. 

Proof. We know that «=« . Reactive processes are closed under labelled transitions and 
on reactive processes the conditions that define labelled bisimulation coincide with the ones 
for the usual bisimulation. □ 

The situation on non-reactive processes is summarised as follows where all implications 
are strict. 

Proposition 22 Suppose P, Q are processes. 

(1) IfP^ u Q then P^Q. 

(2) If moreover P and Q are CCS processes then P ~ u Q implies both P ~" cs Q and P ~ Q. 

Proof. (1) The clauses in the definition of ~ u imply directly those in the definition of the 
labelled bisimulation that characterises ~ (definition 1 14[) . To see that the converse fails note 
that (o|n)«fi while (a | fi) ^ u Q. 

(2) Use (1) and the fact that the clauses in the definition of ~" imply directly those in the 
definition of ~" cs . To see that the converse fails use the counter-example in (1) and the fact 
that R^ cs Q while ^ u tt. □ 



5 Divergence sensitive bisimulation 

We refine the notion of bisimulation to make it sensitive to divergence and show that the 
characterisation presented in section [3] can be adapted to this case. 

We say that a process P may diverge and write P f|~ if there is an infinite reduction 
sequence of r actions that starts from P. We refine the notion of bisimulation by making it 
sensitive to divergence. 

Definition 23 (ff-bisimulation) A symmetric relation 1Z on processes is a divergence sen- 
sitive bisimulation (^-bisimulation, for short) if it is a bisimulation according to definition^ 
and if P7ZQ and P ff implies Q ff. We denote with ~-ff the largest -^-bisimulation. 

Remark 24 Say that a process P is strongly normalising if all reduction sequences of r- 
actions that start from P terminate. A process is strongly normalising if and only if it 
may not diverge. It follows that one can give an equivalent formulation of ^-bisimulation 
by replacing the may divergence predicate with the strong normalisation predicate. 

We notice the following properties whose proof is direct. 

Proposition 25 (1) If P ^ Q then P^Q. 

(2) If P and P i}- a then Q JJ, . 

(3) IfP^Q and P JJ- C then Q ij. c . 

(4) IfPtfc then Pit- 

(5) // P ty c and Q ty c then P^Q. 
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Proof. (1) A •ff-bisimulation is also a bisimulation. 

(2) We apply (1) and proposition 

(3) We apply (1) and proposition fT3T l). 

(4) Immediate, by definition. 

(5) If P ty c and Q ty c then P ft and Q ft. 



□ 



It follows that f|~-bisimulation coincides with bisimulation on the processes that are not 
contextual convergent. On the other hand, on those that are contextual convergent, it is a 
strictly finer notion as, e.g., it distinguishes from A = r.A + r.O. 

The characterisation of ff-bisimulation turns out to be straightforward: it is enough to 
make the labelled bisimulation we have introduced in definition Q3] sensitive to divergence. 

Definition 26 (ff-labelled bisimulation) A symmetric relation 7Z on processes is a diver- 
gence sensitive labelled bisimulation (or ft -labelled bisimulation) if it is a labelled bisimulation 
and if P1ZQ and P ft implies that Q ft. We denote with ral the largest ft-labelled bisimulation. 

Because of the properties stated in proposition [25l one can repeat the proofs in section [3] 
while adding specific arguments to take the sensitivity to divergence into account. 

Proposition 27 If P « t Q then P ps4 Q. 

Proof. We show that ~^ is a ff-labelled bisimulation by repeating the proof schema in 
proposition[16j Note that the condition that refers to divergence is the same for f|~-bisimulation 
and for ^-labelled bisimulation. □ 



Lemma 28 (1) If P Q and P ft c then Q ft C - 
(2) // P ty c and Q $ c then P^Q. 

PROOF. (1) Note that P «1 Q implies P r/ Q and apply lemma fTTlfl). 

(2) By proposition [25T 5). P $c and Q $c implies P w^. Q and by proposition [27] the latter 



Proposition 29 If P ^ Q then P & t Q. 

Proof. As in proposition 1 181 we have to verify that ~^ is preserved by name generation and 
parallel composition. For the former we note that va P ft if and only if P ft. For the latter, we 
can repeat the proof in proposition 1 181 Moreover, we have to consider the case where P ~i Q 
and (P | R) ft. The process (P \ R) diverges because: either P and R may engage in a finite 
number of synchronisations after which one of the two diverges or P and R may engage in an 
infinite number of synchronisations. Suppose the finite or infinite number of synchronisations 
between P and R correspond to the transitions P =^ P\ =r- ■ • • and R =^ R\ =^ • • • If P, Pi, • • • 
are all contextually convergent then Q Q\ =$- ■ ■ ■ and Pi «| Qi. Hence (Q \ R) ft. If P $c 
then Q $c implies {Q \ R) $c which implies (Q \ R) ft. Finally, suppose Pi is the least i 
such that Pi ]fc- Then Q ^ ■ ■ ■ ^ Qi-i % Qi with Qi $c and G {aj,r}. If cti = Oj 
then (Q \ R) ft because (Q \ R) => (Qi \ R') and Qi ft. If on = r then (Q \ R) ft because 



implies P «1 Q. 



□ 



(Q | R) ^ (Qi | iVi) and Qi ft. 



□ 
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6 Conclusion 

We have presented a natural notion of contextual and convergence sensitive bisimulation 
and we have shown that it can be characterised by a variant of the usual notion of labelled 
bisimulation relying on the concept of contextual convergence. As a direct corollary of this 
characterisation, we have shown that (untimed) CCS processes are embedded fully abstractly 
into timed ones. Finally, we have refined the notion of bisimulation to make it divergence- 
sensitive. 

We believe that our main contribution, if any, is of a methodological nature. The notion 
of bisimulation we have introduced just requires the notions of reduction and static context 
as opposed to previous approaches that build on the notion of 'labelled' transition or on the 
notion of 'barb'. It would be interesting to apply the proposed approach to other situations 
where the notion of equivalence is unclear. For instance, we expect that our results can be 
extended to a TCCS with 'asynchronous' communication or with 'signal-based' communica- 
tion. 
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